New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

PRAGMA secure_delete needed to actually delete deleted data from the storage #555

Open

brody4hire opened this issue Sep 19, 2016 · 0 comments

Labels

bug-general doc-todo enhancement testing

brody4hire commented Sep 19, 2016

While checking https://www.w3.org/TR/webdatabase/ for some other areas of potential noncompliance I discovered W3 webdatabase DRAFT 7.2: Sensitivity of data:

User agents should treat persistently stored data as potentially sensitive; it's quite possible for e-mails, calendar appointments, health records, or other confidential documents to be stored in this mechanism.

To this end, user agents should ensure that when deleting data, it is promptly deleted from the underlying storage.

The plugin will not actually overwrite the deleted content unless the secure_delete PRAGMA is used.

SQLite keeps this setting disabled by default to improve performance.

The minimum solution is to document this limitation.

I think the correct solution would be for the plugin to add an option for this, and use this PRAGMA unless it is explicitly disabled by the option.

brody4hire added bug-general enhancement doc-todo testing labels

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment